Has the IBM implementation of JSR289 ever been tested against RFC4475 SIP torture test messages?
Pinned topic Compliance with RFC4475 SIP torture test messages
Answered question This question has been answered.
Unanswered question This question has not been answered yet.
Updated on 2011-07-12T12:06:30Z at 2011-07-12T12:06:30Z by bpulito
bpulito 0600015YGA23 Posts
Re: Compliance with RFC4475 SIP torture test messages2011-07-12T12:06:30ZThis is the accepted answer. This is the accepted answer.IBM does conduct security testing and has a development process around secure engineering. We consider the techniques and tools we use as IBM confidential. We feel strongly that revealing details on this only serves as useful information to hackers.
IBM is fully committed to a secure software development approach, consisting of a common development process, a secure engineering framework, a continuous security improvement model, and a supply chain security process. Details of this approach can be found in the following publication: http://www.redbooks.ibm.com/redpieces/pdfs/redp4641.pdf